💼 CP-4 Contingency Plan Testing (L)(M)(H)
- ID:
/frameworks/fedramp-moderate-security-controls/cp/04
Description​
a. Test the contingency plan for the system [FedRAMP Assignment: at least annually] using the following tests to determine the effectiveness of the plan and the readiness to execute the plan: [FedRAMP Assignment: functional exercises].
b. Review the contingency plan test results; and
c. Initiate corrective actions, if needed.
CP-4 Additional FedRAMP Requirements and Guidance:
(a) Requirement: The service provider develops test plans in accordance with NIST Special Publication 800-34 (as amended); plans are approved by the JAB/AO prior to initiating testing.
(a) Requirement: The service provider must include the Contingency Plan test results with the security package within the Contingency Plan-designated appendix (Appendix G, Contingency Plan Test Report).
Similar​
- Sections
/frameworks/fedramp-high-security-controls/cp/04
- Internal
- ID:
dec-c-9c9d9451
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 FedRAMP High Security Controls → 💼 CP-4 Contingency Plan Testing (L)(M)(H) | 2 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 CP-4(1) Coordinate with Related Plans (M)(H) | no data |